On Saturday 27 January 2007 08:37, [EMAIL PROTECTED] wrote: > > Hi gang, > > I have a fedora machine running a few services > > httpd, ftpd, sshd rsync dns > > When I connected to Bigpond cable, I could not access the machine. > > Access was denied for all the above services. > > > > So, I disabled the firewall using system-config-securitylevel-tui as > > I have only ssh access to the remote machine. > > > > This fixed the problem and I (and others) can access the machine. The > > problem now is that I have a machine running without the firewall. How > > can I customize this with ssh? > > > > > > Install shorewall (www.shorewall.net). Shorewall is an integrated > wrapper to iptable that > facilitates ease of configuration and maintainance of ip filters. > > To install, ssh to the machine and do, > > # yum -y install shorewall > > Then read the howto install and configure manual from www.shorewall.net. > > Hope this helps.
I'm a bear of little brain. I find shorewall boggling. lokkit is the easy way with fedora guarddog is harder, and silly, but works OK (cannot be told to permit RELATED,ESTABLISHED) editing files is a HUGE learning curve (iptables -V) gives hints) But for what you want lokkit works James -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
